“Microsoft has admitted that its Internet Explorer was a weak link in the recent attacks on Google’s systems that originated in China,” BBC News reports.
MacDailyNews Take: Why are the so-called geniuses at Google using the world’s worst browser? If you’re going to test for IE, test the POS in a safe, segregated manner; don’t use it for business.
The Beeb continues, “The firm said in a blog post on Thursday that a vulnerability in the browser could allow hackers to remotely run programs on infected machines. Following the attack, Google threatened to end its operations in China.”
“‘Based upon our investigations, we have determined that Internet Explorer was one of the vectors used in targeted and sophisticated attacks against Google and possibly other corporate networks,’ said Microsoft’s Director of SecurityResponse Mike Reavey in the post,” The Beeb reports.
MacDailyNews Take: Director of Security Response for Microsoft. Busy guy.
The Beeb continues, “Security firm McAfee told news agency AFP that the attacks on Google, which targeted Chinese human rights activists worldwide, showed a level of sophistication above that of typical, isolated cyber criminal efforts.
McAfee’s vice-president of threat research Dmitri Alperovitch told AFP that although the firm had ‘no proof that the Chinese are behind this particular attack, I think there are indications though that a nation-state is behind it.’”
Full article here.
Jim Finkle reports for Reuters, “Google said on Tuesday that in mid-December, it detected an attack on its corporate infrastructure originating from China that resulted in the theft of its intellectual property. It eventually found that more than 20 other companies had been infiltrated.”
“McAfee said on Thursday that those who engineered the attacks tricked employees of the companies into clicking on a link to a website that secretly downloaded sophisticated malicious software onto their PCs through a campaign that the hackers apparently dubbed ‘Operation Aurora,’” Finkle reports.
“The programs allowed the hackers to take control of the PCs without the knowledge of their users, according to McAfee, which has been researching the matter on behalf of several companies involved in the attacks since late last week,” Finkle reports.
“McAfee’s Alperovitch declined to say which companies had hired McAfee, saying they had signed confidentiality agreements,” Finkle reports. “So far the only other victim to come forward is design software maker Adobe Systems Inc, which has said that it is still investigating the matter.”
Finkle reports, “Internet Explorer is vulnerable on all recent versions of the Windows operating system, including Windows 7, according to McAfee. Microsoft said attacks had been limited to IE6, an older version of the application.”
Full article here.
MacDailyNews Take: If you have a choice (i.e. no IT doofus standing over your shoulder dictating stupidity) and are still using Internet Explorer, STOP IMMEDIATELY! Go get yourself a real Web browser.
[Thanks to MacDailyNews Reader "Tom R." for the heads up.]
5 Day Most Commented